Integration Hub OpManager Nexus SSO

Steps to configure SAML SSO for ManageEngine OpManager Nexus

About OpManager Nexus

OpManager Nexus is an integrated solution offering network, server, and application monitoring capabilities. It provides real-time insights into the performance and availability of IT infrastructure, enabling proactive troubleshooting and optimization for enhanced operational efficiency.

The following steps will help you enable single sign-on (SSO) for OpManager Nexus from Identity360.

Prerequisites

  1. The MFA and SSO license for Identity360 is required to enable SSO for enterprise applications. For more information, refer to pricing details.
  2. Log in to Identity360 as an Admin or Super Admin.
  3. Navigate to Applications > Application Integration > Create New Application, and select OpManager Nexus from the applications displayed.
    Note: You can also find OpManager Nexus from the search bar located at the top.
  4. Under the General Settings tab, enter the Application Name and Description.
  5. Under the Choose Capabilities tab, choose SSO and click Continue.
    Identity360 application configuration general settingsGeneral settings of SSO configuration for OpManager Nexus
  6. Under Integration Settings, navigate to the Single Sign On tab, click on Metadata Details. You can configure OpManager Nexus by either uploading the metadata file or entering the details manually.
    • For uploading metadata file: Download the metadata file to be uploaded during the configuration of OpManager Nexus in Identity360 by clicking Download from the Metadata field.
    • For manual configuration:
      • Copy the Login URL and Logout URL, which will be used during the configuration of OpManager Nexus.
      • Download the SSO certificate by clicking Download from Signing Certificate field.
        Identity360 application configuration integration settingsIntegration Settings of SSO configuration for OpManager Nexus

OpManager Nexus (service provider) configuration steps

  1. Log in to OpManager Nexus with an admin's credentials.
  2. In the OpManager Nexus portal, go to Settings > General Settings > Authentication.
    OpManager Nexus portal viewPortal view of OpManager Nexus
  3. Select the SAML tab under Authentication.
  4. Under the Service Provider Details section, copy the Entity ID and Assertion Consumer URL. These will be used later.
    OpManager Nexus Set up SSOConfiguration of SAML SSO from OpManager Nexus
  5. The IdP details can be entered in two ways:
    • Using the Metadata file
      • Under the Identity Provider Details section, choose the Upload IdP metadata file radio button.
      • Enter Identity360 as the Name, and select Email ID from the Name ID Format drop-down.
      • Upload the metadata file downloaded in step 6a of the prerequisites section.
      • Click Save.
        • OpManager Nexus manual configurationMetadata configuration from OpManager Nexus
    • Manually entering the IdP details
      • Under the Identity Provider Details section, choose the Configure IdP information manually radio button.
      • Enter Identity360 as the Name, and select Email ID from the Name ID Format drop-down.
      • Paste the Login URL and Logout URL copied in step 6b(i) of the prerequisites section in the IdP Login URL and IdP Logout URL fields, respectively
        Note: The Logout URL is optional and can be skipped if single logout (automatically log out from Identity360 when logging out from OpManager Nexus) is not required.
      • Upload the X.509 certificate file downloaded in step 6b(ii) of the prerequisites section in the IdP's Certificate field.
      • Click Save.
        • OpManager Nexus manual configurationManual configuration from OpManager Nexus
  6. Click Test connection to test the connection.
  7. Click Enable SAML SSO.
    SP connection test and SSO enablementOpManager Nexus connection test and SSO enablement

Identity360 (identity provider) configuration steps

  1. Switch to Identity360's application configuration page.
  2. In the ACS URL field, enter the ACS/Recipient URL copied in step 4 of OpManager Nexus configuration.
  3. In the Entity ID field, enter the Issuer URL/Entity ID value copied in step 4 of OpManager Nexus configuration.
  4. Click Save.
    Identity360 application configurationIntegration Settings of SSO configuration for OpManager Nexus
  5. To learn how to assign users or groups to one or more applications, refer to this page.

Your users should now be able to sign in to OpManager Nexus through the Identity360 portal.

Note: For OpManager Nexus, both SP-initiated and IdP-initiated flows are supported.

Steps to enable MFA for OpManager Nexus

Setting up MFA for OpManager Nexus using Identity360 involves the following steps:

  1. Set up one or more authenticators for identity verification when users attempt to log in to OpManager Nexus. Identity360 supports various authenticators, including Google Authenticator, Zoho OneAuth, and email-based verification codes. Click here for steps to set up the different authenticators.
  2. Integrate OpManager Nexus with Identity360 by configuring SSO using the steps listed here.
  3. Now, activate MFA for OpManager Nexus by following the steps mentioned here.

How does MFA for applications work in Identity360?

  SSO Integration flow diagram  

Don't see what you're looking for?

  •  

    Visit our community  

    Post your questions in the forum.

     
  •  

    Request additional resources  

    Send us your requirements.